Fix tor configuration append / graph visualization
This commit is contained in:
44
install.sh
44
install.sh
@@ -32,6 +32,25 @@ TIMER="/etc/systemd/system/torpanel-collector.timer"
|
|||||||
|
|
||||||
export DEBIAN_FRONTEND=noninteractive
|
export DEBIAN_FRONTEND=noninteractive
|
||||||
|
|
||||||
|
ensure_torrc_d_include() {
|
||||||
|
local main="$TOR_ETC/torrc"
|
||||||
|
install -d -m 755 "$TOR_TORRC_D"
|
||||||
|
|
||||||
|
if [[ ! -f "$main" ]]; then
|
||||||
|
echo "# Created by TorPanel installer" > "$main"
|
||||||
|
fi
|
||||||
|
|
||||||
|
if grep -Eq '^[[:space:]]*%include[[:space:]]+/etc/tor/torrc\.d/\*\.conf' "$main"; then
|
||||||
|
return 0
|
||||||
|
fi
|
||||||
|
|
||||||
|
if sed -n 's/^[[:space:]]*#\s*%include[[:space:]]\+\/etc\/tor\/torrc\.d\/\*\.conf/%include \/etc\/tor\/torrc.d\/\*\.conf/p' "$main" | grep -q .; then
|
||||||
|
sed -i 's/^[[:space:]]*#\s*%include[[:space:]]\+\/etc\/tor\/torrc\.d\/\*\.conf/%include \/etc\/tor\/torrc.d\/\*\.conf/' "$main"
|
||||||
|
else
|
||||||
|
printf '\n%%include /etc/tor/torrc.d/*.conf\n' >> "$main"
|
||||||
|
fi
|
||||||
|
}
|
||||||
|
|
||||||
echo -e "${C_BOLD}Installing TorPanel...${C_RESET}"
|
echo -e "${C_BOLD}Installing TorPanel...${C_RESET}"
|
||||||
|
|
||||||
info "Updating apt and installing packages"
|
info "Updating apt and installing packages"
|
||||||
@@ -49,7 +68,7 @@ ln -sf "$PHP_SOCK" /run/php/php-fpm.sock || true
|
|||||||
|
|
||||||
info "Preparing directories"
|
info "Preparing directories"
|
||||||
install -d "$PANEL_PUBLIC" "$STATE_DIR" "$LOG_DIR" "$ETC_APP"
|
install -d "$PANEL_PUBLIC" "$STATE_DIR" "$LOG_DIR" "$ETC_APP"
|
||||||
touch "$STATE_DIR/stats.json"
|
echo -n '{"data":[]}' > "$STATE_DIR/stats.json"
|
||||||
rsync -a --delete "$SCRIPT_DIR/web/" "$PANEL_PUBLIC/"
|
rsync -a --delete "$SCRIPT_DIR/web/" "$PANEL_PUBLIC/"
|
||||||
chown -R www-data:www-data "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR"
|
chown -R www-data:www-data "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR"
|
||||||
chmod 750 "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR"
|
chmod 750 "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR"
|
||||||
@@ -105,6 +124,10 @@ CookieAuthFileGroupReadable 1
|
|||||||
TORRC
|
TORRC
|
||||||
ok "torrc written"
|
ok "torrc written"
|
||||||
|
|
||||||
|
info "Ensuring main torrc includes torrc.d/*.conf"
|
||||||
|
ensure_torrc_d_include
|
||||||
|
ok "torrc.d include active"
|
||||||
|
|
||||||
info "Setting permissions for Tor managed config"
|
info "Setting permissions for Tor managed config"
|
||||||
chown root:www-data "$TOR_TORRC_D"; chmod 775 "$TOR_TORRC_D"
|
chown root:www-data "$TOR_TORRC_D"; chmod 775 "$TOR_TORRC_D"
|
||||||
chown root:www-data "$TOR_PANEL_CONF"; chmod 664 "$TOR_PANEL_CONF"
|
chown root:www-data "$TOR_PANEL_CONF"; chmod 664 "$TOR_PANEL_CONF"
|
||||||
@@ -129,6 +152,7 @@ cat > "$SVC" <<'UNIT'
|
|||||||
Description=TorPanel minute collector
|
Description=TorPanel minute collector
|
||||||
After=tor.service
|
After=tor.service
|
||||||
Wants=tor.service
|
Wants=tor.service
|
||||||
|
ConditionPathExists=/run/tor/control.authcookie
|
||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
Type=oneshot
|
Type=oneshot
|
||||||
@@ -146,17 +170,22 @@ ProtectKernelModules=yes
|
|||||||
ProtectKernelTunables=yes
|
ProtectKernelTunables=yes
|
||||||
PrivateTmp=yes
|
PrivateTmp=yes
|
||||||
PrivateDevices=yes
|
PrivateDevices=yes
|
||||||
PrivateUsers=yes
|
PrivateUsers=no
|
||||||
LockPersonality=yes
|
LockPersonality=yes
|
||||||
MemoryDenyWriteExecute=yes
|
MemoryDenyWriteExecute=yes
|
||||||
RestrictRealtime=yes
|
RestrictRealtime=yes
|
||||||
RestrictSUIDSGID=yes
|
RestrictSUIDSGID=yes
|
||||||
UMask=0077
|
UMask=0077
|
||||||
ReadWriteDirectories=/var/lib/torpanel
|
ReadWritePaths=/var/lib/torpanel
|
||||||
ReadOnlyPaths=/run/tor /etc/tor
|
ReadOnlyPaths=/run/tor /etc/tor
|
||||||
RestrictAddressFamilies=AF_UNIX
|
RestrictAddressFamilies=AF_UNIX
|
||||||
SystemCallFilter=@system-service
|
SystemCallFilter=@system-service
|
||||||
CapabilityBoundingSet=
|
CapabilityBoundingSet=
|
||||||
|
StandardOutput=journal
|
||||||
|
StandardError=journal
|
||||||
|
Environment=PYTHONUNBUFFERED=1
|
||||||
|
Restart=on-failure
|
||||||
|
RestartSec=15s
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=timers.target
|
WantedBy=timers.target
|
||||||
@@ -165,11 +194,13 @@ UNIT
|
|||||||
cat > "$TIMER" <<'TIMER'
|
cat > "$TIMER" <<'TIMER'
|
||||||
[Unit]
|
[Unit]
|
||||||
Description=Run TorPanel collector every minute
|
Description=Run TorPanel collector every minute
|
||||||
|
|
||||||
[Timer]
|
[Timer]
|
||||||
OnBootSec=30sec
|
OnCalendar=*-*-* *:*:00
|
||||||
OnUnitActiveSec=60sec
|
AccuracySec=15s
|
||||||
AccuracySec=15sec
|
|
||||||
Persistent=true
|
Persistent=true
|
||||||
|
Unit=torpanel-collector.service
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=timers.target
|
WantedBy=timers.target
|
||||||
TIMER
|
TIMER
|
||||||
@@ -181,6 +212,7 @@ systemctl enable --now tor
|
|||||||
systemctl enable "$PHP_FPM_SVC" nginx >/dev/null
|
systemctl enable "$PHP_FPM_SVC" nginx >/dev/null
|
||||||
systemctl restart "$PHP_FPM_SVC"
|
systemctl restart "$PHP_FPM_SVC"
|
||||||
systemctl restart nginx
|
systemctl restart nginx
|
||||||
|
systemctl start torpanel-collector.service
|
||||||
systemctl enable --now torpanel-collector.timer
|
systemctl enable --now torpanel-collector.timer
|
||||||
ok "Services running"
|
ok "Services running"
|
||||||
|
|
||||||
|
|||||||
@@ -1,7 +1,16 @@
|
|||||||
<?php
|
<?php
|
||||||
require __DIR__ . '/../lib/app.php'; auth_require();
|
require __DIR__ . '/../lib/app.php';
|
||||||
|
auth_require();
|
||||||
|
|
||||||
header('Content-Type: application/json');
|
header('Content-Type: application/json');
|
||||||
$path = "/var/lib/torpanel/stats.json";
|
header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
|
||||||
if (!file_exists($path)) { echo json_encode(["data"=>[]]); exit; }
|
header('Pragma: no-cache');
|
||||||
|
|
||||||
|
$path = '/var/lib/torpanel/stats.json';
|
||||||
|
if (!is_readable($path)) {
|
||||||
|
echo json_encode(['data' => []]);
|
||||||
|
exit;
|
||||||
|
}
|
||||||
|
|
||||||
$raw = file_get_contents($path);
|
$raw = file_get_contents($path);
|
||||||
echo $raw ?: json_encode(["data"=>[]]);
|
echo $raw !== false && $raw !== '' ? $raw : json_encode(['data' => []]);
|
||||||
@@ -125,7 +125,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
|
|||||||
<input class="form-control" id="orport" name="orport" type="number" min="1" max="65535" placeholder="9001"
|
<input class="form-control" id="orport" name="orport" type="number" min="1" max="65535" placeholder="9001"
|
||||||
value="<?= htmlspecialchars($_POST['orport'] ?? '9001') ?>">
|
value="<?= htmlspecialchars($_POST['orport'] ?? '9001') ?>">
|
||||||
</div>
|
</div>
|
||||||
<div class="col-md-2">
|
<div class="col-md-3">
|
||||||
<label class="form-label" for="rate_mbps">Bandwidth</label>
|
<label class="form-label" for="rate_mbps">Bandwidth</label>
|
||||||
<div class="input-group">
|
<div class="input-group">
|
||||||
<input class="form-control" id="rate_mbps" name="rate_mbps" type="number" min="1" step="1" placeholder="5"
|
<input class="form-control" id="rate_mbps" name="rate_mbps" type="number" min="1" step="1" placeholder="5"
|
||||||
|
|||||||
Reference in New Issue
Block a user